castai-core-workflow-b
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill follows security best practices by utilizing environment variables for API keys, avoiding hardcoded secrets.- [EXTERNAL_DOWNLOADS]: Installs the workload autoscaler via Helm from the official CAST AI repository (castai-helm).- [COMMAND_EXECUTION]: Utilizes curl, helm, and kubectl to perform legitimate cluster management and API interaction tasks.- [SAFE]: External network communication is limited to the official CAST AI API endpoint (api.cast.ai).
Audit Metadata